TechQA.

Is is posible to use a custom authentication logic in Keycloak?

7.2k views Asked by At

I have configured Keycloak with LDAP User Federation. When a user wants to login into an application, he is redirected to the Keycloak login page, enters the uid/pwd and is authenticated using an LDAP bind.

This isn't enough for my requirements since I would like to implement some custom authentication logic, e.g:

public boolean authenticate(String uid, String pwd) {

    //1.- validate against LDAP
    //2.- do some other validations
    return validationResult;
}

How could I include my own authentication logic into Keycloak?

keycloak redhat-sso
Original Q&A
2

There are 2 answers

1
cdan On BEST ANSWER

To add a new authentication mechanism, you implement the Authentication SPI. This is described in the Server Development guide > Authentication SPI section.

0
RrR- On

You could implement an Authentication SPI and deploy it to Keycloak server, or you could implement the authentication logic inside the custom user provider package if you are implementing user federation without using the default options (this authentication flow would be available only for this particular federated user store in this case).

Related Questions in KEYCLOAK

Related Questions in REDHAT-SSO

Popular Questions

Popular Tags

javascript python java c# php android html jquery c++ css ios sql mysql r reactjs node.js arrays c asp.net json python-3.x ruby-on-rails .net sql-server swift django angular objective-c pandas excel

Trending Questions